Features

Everything you need for secure secret management

Envie provides all the tools your team needs to manage secrets securely, without compromising on usability.

Environment Variables

Environment Variables

Store and manage your environment variables with military-grade encryption. Every secret is encrypted on your device before being synced to your team.

  • End-to-end encrypted storage
  • Easy copy and export to .env files
  • Organize with categories (Dev, Staging, Prod)
  • Share securely across your team
api-backend/Production
Encrypted
DATABASE_URLProduction
postgres://user:***@db.example.com
API_KEYProduction
sk_live_***************
JWT_SECRETAll
*********************
3 variablesLast synced: just now
Encrypted File Sharing

Encrypted File Sharing

Share sensitive files like .env files, certificates, and credentials with your team. Files are encrypted with the same zero-trust model.

  • Share any file type securely
  • Automatic encryption/decryption
  • Download history tracking
  • Per-project file storage
Project Files
.env.production
2.4 KB
service-account.json
1.8 KB
ssl-certificate.pem
4.1 KB
All files encrypted with XChaCha20-Poly1305
Organizations & Teams

Organizations & Teams

Structure your secrets with a hierarchical model. Create organizations, organize teams, and manage projects with fine-grained access control.

  • Multi-organization support
  • Flexible team structure
  • Project-level permissions
  • Admin and member roles
Acme Corp
Organization
Backend
Team
API
Auth
Frontend
Team
Web
Mobile
Organization
Teams
Projects
Optional Integration

Google Secret Manager Sync

Already using Google Secret Manager? Connect directly and pull secrets into Envie. Your service account credentials are encrypted locally - we never see them.

  • Direct connection to Google Cloud API
  • Service account key encrypted locally
  • No intermediate server - secrets go directly to your app
  • Seamless workflow with existing infrastructure
Your Device
Decrypts service account key using your Project Key
Decrypted locally
Google Cloud API
Direct connection - no Envie servers involved
Secrets fetched directly
Secrets in Envie
Available in app state, never stored on our servers

Your GCP credentials never touch Envie servers

And much more...

Team Collaboration

Work together with your team on shared secrets. Each member has their own encryption keys for maximum security.

Key Rotation

Rotate encryption keys when team members leave. For organizations, double-admin approval ensures no single point of failure.

Device Identities

Each device has its own cryptographic identity. Approve new devices or revoke access instantly.

Categories

Organize your environment variables with categories like Development, Staging, and Production.

Zero-Trust Security

Built on zero-trust principles. The server never sees your unencrypted data.

Project Hierarchy

Organize projects within teams. Share secrets across projects or keep them isolated.

Ready to secure your secrets?

Envie is open source and free to use. Check out the code on GitHub and start securing your team's secrets today.

View on GitHub Learn about Security